CVE-2025-57776
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-02

Last updated on: 2025-10-09

Assigner: National Instruments

Description
There is an out of bounds write vulnerability due to improper bounds checking resulting in an invalid address when parsing a DSB file with Digilent DASYLab. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted DSB file. The vulnerability affects all versions of DASYLab.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-02
Last Modified
2025-10-09
Generated
2026-06-16
AI Q&A
2025-09-02
EPSS Evaluated
2026-06-14
NVD
CVE-2025-57776
EUVD
EUVD-2025-28628
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
ni dasylab *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
CWE-1285 The product receives input that is expected to specify an index, position, or offset into an indexable resource such as a buffer or file, but it does not validate or incorrectly validates that the specified index/position/offset has the required properties.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is an out of bounds write caused by improper bounds checking when parsing a DSB file in Digilent DASYLab. It can lead to writing data to an invalid memory address, which may allow an attacker to execute arbitrary code if a user opens a specially crafted DSB file.

Impact Analysis

If exploited, this vulnerability can allow an attacker to execute arbitrary code on your system, potentially leading to full compromise of the affected software environment. This requires a user to open a maliciously crafted DSB file.

Mitigation Strategies

To mitigate this vulnerability, avoid opening any DSB files from untrusted or unknown sources. Since the vulnerability requires a user to open a specially crafted DSB file, user caution is critical. Additionally, monitor for updates or patches from the vendor (Digilent DASYLab) and apply them once available.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-57776. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart